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a processor for selectively processing [said] the retrieved encryption and/or decryption 
information from [said] the policy file in accordance with a predetermined capability 
[conditions] condition , and for providing allowable encryption and/or decryption levels to [said] 
the application program. 



28. (AMENDED) The system of claim 27 \ wherein [said] the storage unit in an 
archive file. 

29. (AMENDED) The system of claim 28 4 wherein [said] the plurality of attributes 
and values are compressed in [said] the storage unit, and further including a decompression unit 
for decompressing [said] the compressed plurality of attributes and values in accordance with 
[said] the controller retrieving [said] the compressed plurality of attributes and values. 



30. (AMENDED) The system of claim [28] 27, wherein [said] the plurality of 
attributes and values are compressed in [said] the storage unit, and further including a 
decompression unit for decompressing [said] the compressed plurality of attributes and values in 
accordance with [said] the controller retrieving [said] the compressed plurality of attributes and 
values. 



In the Abstract : 

Please replace the previously submitted Abstract with the Abstract, as amended, 
presented on the attached separate sheet. 

REMARKS 

Favorable reconsideration of this application is respectfully requested in view of the 
above amendments and the following remarks. By this amendment, the specification and claims 
1-30 have been editorially amended. Applicants submit that no new matter has been added and 
notice to that effect is solicited. Unless otherwise specifically stated, the claims have been 
amended to address §112, second paragraph, and form issues, noted by the Applicants, and for 
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no other reason. The Abstract has also been editorially amended to conform with formal 
requirements. Currently, claims 1-30 are pending. 

Claims 1-4 were rejected under 35 USC 101 as allegedly directed to non-statutory subject 
matter. This rejection is respectfully traversed. The Examiner has simply reiterated his previous 
rejection of claims 1-4 as directed to non-statutory subject matter. Applicants respectfully 
submit that the Examiner is improperly rejecting claims 1-4. 

Applicants submit that claims 1-4 do not merely claim nonfunctional descriptive 
materials stored in a computer-readable medium. The subject matter of the instant application, 
as presented in claims 1-4, is "functional descriptive material," which consists of data structures 
and computer programs, which empart functionality when employed as a computer component. 
A "data structure" on a computer readable medium provides a physical or logical relationship 
among data elements designed to support specific data manipulation functions. This is not a 
mere arrangement of data. The subject matter of the instant invention, as functional descriptive 
material, is not descriptive material per se, and hence non-statutory. When functional descriptive 
material is recorded on some computer readable medium, it becomes structurally and 
functionally interrelated to the medium and is statutory since use of technology permits the 
function of the descriptive material to be realized. In the instant case, a claimed computer- 
readable medium has been encoded with a data structure which defines structural and functional 
interrelationships between the data structure and the computer software and hardware 
components which permit the data structure's functionality to be realized, and therefore, the 
subject matter of claims 1-4 is statutory. MPEP 2100-1 1. 

Therefore, the subject matter of claims 1-4 is statutory. Applicants submit that claims 1-4 
recite statutory subject matter, and accordingly, withdrawal of this rejection is respectfully 
requested. 

Claims 1-30 were rejected as unpatentable over Klemba et al. (U.S. Patent No. 
5,65 1,068) in view of Schneier in Applied Cryptography. This rejection is respectfully 
traversed. 

Klemba relates to a cryptographic framework which consists of a national flag card, a 
cryptographic unit, a host system, and a network security server. The framework of Klemba is 



Applicant 
Serial No. 
Filed 
Page 




Attorney's 



m 



No.: 06975-193001 / 97-0521 



September 30, 1997 
10 



directed to flexible resolution of problems surrounding international cryptography with 
flexibility. 



The instant invention relates to a cryptography configuration for controlling the use of 
cryptography so that products using cryptographic controls may be exported in accordance with 
United States export laws, and/or imported into other countries that place additional restrictions 
on the use of cryptography. In one aspect, a computer-readable medium stores a policy file for 
controlling cryptographic functions of an application program and includes an attribute portion 
that holds a plurality of cryptographic policy attributes, which each represent a cryptographic 
function; a value portion that includes a plurality of attribute values, which each correspond to a 
separate cryptographic policy attribute and indicate to a policy filter whether an application 
program may use the cryptographic policy represented by the attribute; and a signature portion 
for verifying authenticity of the attribute portion and the value portion. In other aspects, a 
system for controlling cryptographic functions of an application program includes a storage 
means or storage unit for storing a policy file which includes an attribute portion, a value portion, 
and a signature portion; a control means or controller for selectively retrieving encryption and/or 
decryption information from the policy file; and a processing means or processor for selectively 
processing any retrieved encryption and/or decryption information from the policy file in 
accordance with a predetermined capability condition and for providing allowable encryption 
and/or decryption levels to the application program. In one particular aspect, each of the 
attribute values is a string, an integer number, and a truth expression. In other aspects, a method 
of validating a cryptographic policy file for controlling cryptographic functions in an application 
program includes retrieving a policy file including an attribute portion, a value portion, and a 
signature portion from a storage means or storage unit; verifying a digital signature of an 
attribute-value pair stored in the storage means or storage unit; performing a verification of the 
application program version with software-version attribute value of the policy file in the storage 
means or storage unit; and confirming localization information of the application program with a 
localization in the software-version attribute value of the policy file. 

Klemba in view of Schneier does not teach or in anyway suggest the invention of claims 
1 -30. The Examiner acknowledges that Klemba lacks teaching various elements of the instant 
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invention recited in the claims. The Examiner mistakenly believes that Schneier overcomes the 
deficiencies in Klemba, and that these references together would provide the instant invention. 

Firstly, Klemba fails to teach or suggest the invention of independent claim 1 . Klemba, 
through the use of a national flag card (NFC) controls the cryptographic functions of the 
cryptographic engine. In the instant invention, as recited in claim 1, a policy file stored on a 
computer-readable medium controls the cryptographic functions of an application program. The 
computer-readable medium includes an attribute portion, a value portion, and a signature portion, 
and through the relationship of these elements determines whether particular cryptographic 
policy is operable. Thus, the control exercised by the invention of independent claim 1 is on the 
application program, not the cryptographic engine. 

In Klemba, without a NFC, the cryptographic unit (CU) of Klemba will not work. In the 
instant invention of claim 1, through the relationship between the attribute portion, the value 
portion, and the signature portion, whether an application program may use the cryptographic 
policy represented by a particular attribute is determined. In the claimed invention, the 
application program would work; however, for the crypto functions to work requires the policy 
file. Therefore, Klemba alone is unable to teach or suggest the invention of claim 1. 

The Examiner believes that it "would have been obvious to one of ordinary skill in the art 
at the time of the invention to modify Klemba to utilize digital signatures by incorporating the 
teachings of Schneier because the signature provides a level of assurance that the object being 
signed has been verified by the signer." Office Action, page 3, paragraph 7. However, the 
Examiner is mistaken. While Schneier discusses digital signatures and their uses, Schneier 
cannot overcome other deficiencies noted in Klemba. Thus, Klemba in view of Schneier does 
not teach or suggest the invention of claim 1 . 

Claims 2-4 depend from independent claim 1, and are therefore not taught or suggested 
by Klemba or Schneier, alone or in combination. In particular, as to claim 3, the Examiner 
believes that Klemba discloses that the attribute value is a data string, an integer number, or a 
truth expression. Office Action, page 4, paragraph 9. The Examiner is mistaken. The section of 
Klemba relied upon by the Examiner is a sequence listing the initialization protocols which must 
be successfully completed before the operational protocols of Klemba are active. Therefore, 
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Applicants respectfully submit claims 1-4 are not taught or suggested by Klemba in view of 
Schneier. 

As to independent claim 5, the Examiner believes that Klemba teaches or suggests the 
subject matter of this claim. However, the Examiner is mistaken. Klemba does not teach the 
control means for selectively retrieving encryption and/or decryption information from the policy 
file or a processing means for selectively processing the retrieved encryption and/or decryption 
information from the policy file in accordance with a predetermined capability condition and 
providing allowable encryption/decryption levels to application program, as recited in 
independent claim 5. Klemba requires a NFC to activate cryptographic engine. There is no 
teaching or suggestion of selectively retrieving encryption and/or decryption information or 
selectively processing this information in accordance with a predetermined capability condition. 
Therefore, Klemba fails to teach or suggest the invention of claim 5. 

Claims 6-9 depend from independent claim 5, and therefore are not taught or suggested 
by Klemba or Schneier, alone or in combination. Additionally, the Examiner's rejections of 
these claims is not accurate. For instance, as to claim 6, Klemba does not disclose, much less 
suggest, that the attribute values are a data string, an integer number, or a truth expression. 

As to claim 7, the Examiner asserts that using Boolean expressions is well known in the 
art and taking Official Notice of such, according to the Examiner, it would have been obvious to 
one of ordinary skill in the art at the time of the invention to modify the Klemba/Schneier 
combination to use truth expression in order to indicate the existence or status of a particular 
condition. Firstly, claim 7 recites that the truth expression is one of a truth flag, a false flag, and 
a conditional flag. This is not a Boolean expression. A Boolean expression has only two values, 
i.e., true or false. In the instant claim, three options are presented. Therefore, not only is the 
invention of claim 7 not taught or suggested by the Klemba or Schneier references, but also one 
of ordinary skill in the art at the time of the invention would not modify the Klemba/Schneier 
combination as suggested by the Examiner. 

As to claim 8, Klemba fails to teach or suggest that the storage means is an archive file. 
The Examiner believes that since a NFC has a non-volatile memory, Klemba suggests an archive 
file. However, the Examiner is mistaken. The NFC of Klemba stores specific detailed 
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information to implement a cryptographic use policy. This is not a storage means that is an 
archive file, as claimed. Therefore, none of claims 6-9 fails to teach or suggest by Klemba. 

Likewise, independent claim 19 and its dependent claims 20-26 are not taught or 
suggested by Klemba in view of Schneier. As to independent claim 19, the Examiner mistakenly 
believes that Klemba teaches or suggests the subject matter of this claim. Klemba does not teach 
a control unit for selectively retrieving encryption and/or decryption information from the policy 
file or a processor for selectively processing the retrieved encryption and/or decryption 
information from the policy file in accordance with a predetermined capability condition and 
providing allowable encryption/decryption levels to application program, as recited in 
independent claim 19. Therefore, Klemba fails to teach or suggest the invention of claim 19. 

Claims 20-26 depend from independent claim 19, and therefore are not taught or 
suggested by Klemba or Schneier, alone or in combination. Additionally, the Examiner's 
specific rejections of these claims are without basis. For instance, as to claim 20, Klemba does 
not even suggest that the attribute values are a data string, an integer number, or a truth 
expression. 

As to claim 21, taking Official Notice that using Boolean expressions is well known, 
according to the Examiner, it would have been obvious to one of ordinary skill in the art at the 
time of the invention to modify the Klemba/Schneier combination to use truth expression in 
order to indicate the existence or status of a particular condition. Firstly, claim 21 recites that the 
truth expression is one of a truth flag, a false flag, and a conditional flag. This is not a Boolean 
expression. A Boolean expression has only two values, i.e., true of false. In the instant claim, 
three options are presented. Therefore, not only is the invention of claim 21 not taught or 
suggested by the Klemba or Schneier references, but also one of ordinary skill in the art at the 
time of the invention would not modify the Klemba/Schneier combination as suggested by the 
Examiner. 

As to claims 22 and 24, Klemba fails to teach or suggest that the storage unit is an 
archive file. The Examiner mistakenly believes that since a NFC has a non-volatile memory, 
Klemba suggests an archive file. The NFC of Klemba stores specific, detailed information to 
implement a cryptographic use policy. This is not a storage unit that is an archive file, as 
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claimed in claims 22 and 24. Therefore, none of claims 19-26 are taught or suggested by 
Klemba in view of Schneier. 

Similarly, claims 10-12 are not taught or suggested by Klemba or Schneier, alone or in 
combination. The Examiner is mistaken that because Boolean expression is well-known, one of 
ordinary skill in the art would modify the Klemba/Schneier combination to provide the invention 
of independent claim 10. As previously stated, a Boolean expression provides only two options, 
i.e., true or false. The instant claim provides three options . Hence, independent claim 10 is not 
only not taught or suggested by the Klemba/Schneier combination, but one of ordinary skill in 
the art would not modify the Klemba/Schneier combination as proposed by the Examiner. 
Additionally, Klemba does not teach the control means for selectively retrieving encryption 
and/or decryption information from the policy file or a processing means for selectively 
processing the retrieved encryption and/or decryption information from the policy file in 
accordance with a predetermined capability condition and providing allowable 
encryption/decryption levels to application program, as recited in independent claim 10. 
Therefore, Klemba fails to teach or suggest the invention of claim 10. 

As to claim 1 1, like claim 8, Klemba fails to teach or suggest that the storage means is an 
archive file. The Examiner believes that since a NFC has a non-volatile memory, Klemba 
suggests an archive file. However, the NFC of Klemba stores specific, detailed information to 
implement a cryptographic use policy. This is not a storage means that is an archive file, as 
claimed. Therefore, none of claims 10-12 are taught or suggested by Klemba or Schneier, alone 
or in combination. 

Likewise, claims 27-30 are not taught or suggested by the Klemba/Schneier combination. 
The Examiner is mistaken that because Boolean expression is well-known, one of ordinary skill 
in the art would modify the Klemba/Schneier combination to provide the invention of 
independent claim 27. As previously stated, a Boolean expression provides two options, i.e., true 
or false. The instant claim provides three options . Hence, independent claim 27 is not only not 
taught or suggested by the Klemba/Schneier combination, but one of ordinary skill in the art 
would not modify the Klemba/Schneier combination as proposed by the Examiner. Additionally, 
Klemba does not teach the control unit for selectively retrieving encryption and/or decryption 
information from the policy file or a processor for selectively processing the retrieved encryption 
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and/or decryption information from the policy file in accordance with a predetermined capability 
condition and providing allowable encryption/decryption levels to application program, as 
recited in independent claim 27. Therefore, Klemba fails to teach or suggest the invention of 
claim 27. 

As to claim 28, like claim 1 1 , Klemba fails to teach or suggest that the storage unit is an 
archive file. The Examiner believes that since a NFC has a non- volatile memory, Klemba 
suggests an archive file. However, the Examiner is mistaken. The NFC of Klemba stores 
specific, detailed information to implement a cryptographic use policy. This is not a storage unit 
that is an archive file, as claimed. Therefore, none of claims 27-30 are taught or suggested by 
Klemba or Schneier, alone or in combination. 

The Examiner believes that Klemba in combination with Schneier teaches or suggests the 
invention of independent claim 13. However, as acknowledged by the Examiner in the Office 
Action at page 5, Klemba lacks any teaching or suggestion of several elements recited in 
independent claim 13. For instance, Klemba fails to teach 

verifying a digital signature of an attribute-value pair stored 
in the storage means; 

performing a verification of the application program version 
with a software-version attribute value of the policy file in the storage 
means; and 

confirming localization information of the application program 
with a localization in the software-version attribute value of the policy file, 

as recited in independent claim 13. The Examiner mistakenly believes that Schneier overcomes 
these deficiencies. To the contrary, Schneier only discusses digital signatures and their uses, and 
does not teach or suggest these features of the invention of independent claim 13. Even 
assuming arguendo that, as proposed by the Examiner, one of ordinary skill would use the 
teachings of Schneier to modify Klemba to include digital signatures, neither Klemba nor 
Schneier teaches or suggests "performing a verification of the application program version with a 
software-version attribute value of the policy file in the storage means; and confirming 
localization information of the application program with a localization in the software-version 
attribute value of the policy file," as recited in claim 13. Therefore, Klemba and Schneier, alone 
or in combination, fail to teach or in any way suggest the invention of independent claim 13. 
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Claims 14-18 depend from independent claim 13, and therefore, are also not taught or 
suggested by Klemba in view of Schneier. Further, as to claim 14, Klemba fails to teach or 
suggest the recited feature. In the instant invention, the application program would work even if 
the policy file were invalid, just not enabling the particular cryptographic functions. Klemba, 
however, requires a valid NFC in order for the crypto engine to be activated. 

As to claim 15, Klemba does not suggest configuring application cryptographic 
capabilities in accordance with attribute-value pairs, as recited. Rather, in Klemba, a NFC 
specifies a certain cryptographic policy to be implemented for a crypto engine. Therefore, none 
of claims 13-18 are taught or suggested by Klemba in view of Schneier. 

Applicants submit that none of the pending claims are taught or suggested by Klemba in 
view of Schneier, and accordingly, withdrawal of this rejection is respectfully requested. 

Applicants submit that all of the claims are now in condition for allowance, which action 
is requested. Filed herewith is a Petition for Automatic Extension with the required fee. Please 
apply any other charges or credits to Deposit Account No. 06-1050, Ref. No. 06975-193001. 

Respectfully submitted, 
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